- EJBCA
Infobox Software
logo =
caption =
developer = [http://www.primekey.se PrimeKey Solutions AB]
released = initial release|2001|12|05
latest release version = 3.7.1
latest release date = release date|2008|9|16
latest preview version =
latest preview date =
programming language = Java, J2EE
operating system =Cross-platform
language = Chinese, English, French, German, Italian, Portuguese, Spanish, Swedish
genre = PKI Software
license = LGPL
website = [http://www.ejbca.org/ www.ejbca.org]Enterprise Java Bean Certificate Authority, or EJBCA, is an
Open source PKI Certificate Authority software package.EJBCA is maintained and sponsored by the Swedish for-profit company, [http://www.primekey.se PrimeKey Solutions AB] , which holds the copyright to most of the codebase. The project's
source code is available under terms of theLesser GNU General Public License .Design
The system is implemented in
Enterprise Java and designed to beplatform independent and fully clusterable [ [http://ejbca.org/architecture.html#Sample%20setup%20architecture Typical large scale setup] ] , which permits a greater degree of scalability than is typical of similar software packages. Multiple instances of EJBCA are run simultaneously, sharing a database containing the current Certificate Authorities (CAs). This permits each instance of the software to access any CA. The software also supports the use of aHardware Security Module (HSM), which provides additional security. Larger-scale installations would use multiple instances of EJBCA running on a cluster, a fully distributed database on a separate cluster and a third cluster with HSMs keeping the different CA keys.Features
EJBCA follows all the major standards in the PKI area like
X509 ,OCSP ,CMP ,XKMS ,SCEP ,Elliptic curves and more [ [http://ejbca.org/features.html List of features] ] , including the newCountry Verifying Certificate (CVC) EU standard for machine readable passports that will be mandatory from 2009-06-26.Development
The EJBCA sourcecode comes with project files for the Eclipse IDE. Concurrent Version System control has been dropped in order to make way for Sub-version Software. As an
Open Source project, EJBCA the standardGNU Lesser General Public License (LGPL ), which is anOpen Source Initiative approved license. The source code is hosted atSourceForge.net . One of the most important aspects for developers is backward compatibility [ [http://wiki.ejbca.org/developers Developer guidelines] ] , since EJBCA is an infrastructure component. A list of all of contributors can be found [http://www.ejbca.org/contributors.html#Contributors here] .Known installations
There are many known [ [http://ejbca.org/installations.html Reference installations] ] installations all over the world, among them:
* Ministry of Defence, France, 1 000 users
* Ministry of Finances, France, 40 000 users
* National Swedish Police Board, Sweden, 25 000 users
* ZhuHai Local Taxation Bureau, China, 50 000 users
* Grupo Safa, Spain, 20 000 users
* Seraza.com, Brazil, 20 000 users
* Autoritat de Certificació de la Comunitat Valenciana, Spain, 75 000 + usersReferences
External links
* [http://sourceforge.net/projects/ejbca/ EJBCA at SourceForge]
* [https://wiki.esecurity.edu.au/display/esecurity/ejbCA+Evaluation+Report EJBCA evaluation report from University of Queensland, AU]
* [http://www.cs.berkeley.edu/~necula/Papers/rte_oopsla04.pdf "Finding and Preventing Run-Time Error Handling Mistakes"] ; Westley Weimer, George C. Necula; University of California, Berkeley
* [http://www.csita.unige.it/software/free/ejbca/ Migration guide from OpenSSL CAs]
* [http://wiki.ejbca.org/replacing-msca Migration guide from MS CAs]
* [http://java-source.net/open-source/network-servers/ejbca EJBCA at java-source.net]
* [http://www.chiariglione.org/leonardo/publications/ebu-dmp/index.htm EJBCA is used a component in Chillout]
* [http://han.pp.se/gl/article.php?story=20080115235612100 Debian package maintainer]
* [http://ejbca-fr.org/home/Accueil Information about EJBCA in French]
* EJBCA proposed as a solution for [http://www.uet.edu.pk/icosst2007/icosst_2007_papers/How%20to%20Overcome%20the%20Challenges%20to%20Large%20Scale%20Adoption%20of%20Open%20Source.pdf How to Overcome the Challenges to Large Scale Adoption of Open Source Software and Systems in Pakistan Business and Industrial Environment] ; Athar Mahboob and Nassar Ikram; National University of Sciences & Technology, KarachiEJBCA in literature
* "Research and application of EJBCA based on J2EE"; Liyi Zhang, Qihua Liu and Min Xu; IFIP International Federation for Information Processing Volume 251/2008; ISBN 978-0-387-75465-9
* Chapter "Securing Connections and Remote Administration" in "Hardening Linux"; James Turnbull; ISBN 978-1-59059-444-5
* "Exception-Handling Bugs in Java and a Language Extension to Avoid Them"; Westley Weimer; Advanced Topics in Exception Handling Techniques Volume 4119/2006; ISBN 978-3-540-37443-5
Wikimedia Foundation. 2010.
